Security Configuration

PveSphere provides various security features to protect your system.

Authentication Security

Password Policy

It is recommended to configure strong password policies:

Minimum length requirements
Complexity requirements
Regular password changes

Multi-Factor Authentication

Supports multi-factor authentication (MFA):

TOTP authentication
SMS verification code
Hardware keys

Access Control

Role Permissions

Use role-based access control:

Administrator role
Operator role
Read-only role

Network Access

You can restrict network access:

IP whitelist
VPN access
Firewall rules

Data Security

Encrypted Transmission

All API communications use HTTPS:

TLS 1.2+
Certificate verification
Secure protocols

Data Encryption

Sensitive data encrypted storage:

Password encryption
Token encryption
Configuration encryption

Audit Logs

Operation Logs

Record all operations:

User operations
System events
Error logs

Log Analysis

You can analyze logs:

Anomaly detection
Behavior analysis
Security audit

Authentication Security​

Password Policy​

Multi-Factor Authentication​

Access Control​

Role Permissions​

Network Access​

Data Security​

Encrypted Transmission​

Data Encryption​

Audit Logs​

Operation Logs​

Log Analysis​